[  133.023277][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[  133.023329][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
Warning: Permanently added '10.128.1.239' (ED25519) to the list of known hosts.
2026/05/10 06:18:07 parsed 1 programs
[  141.844254][ T6032] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  145.939908][ T6042] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.940029][ T6042] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.940143][ T6042] bridge_slave_0: entered allmulticast mode
[  145.941635][ T6042] bridge_slave_0: entered promiscuous mode
[  145.943588][ T6042] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.943699][ T6042] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.943794][ T6042] bridge_slave_1: entered allmulticast mode
[  145.945156][ T6042] bridge_slave_1: entered promiscuous mode
[  146.082163][ T6042] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  146.084672][ T6042] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  146.280402][ T6042] team0: Port device team_slave_0 added
[  146.282371][ T6042] team0: Port device team_slave_1 added
[  146.410258][ T6042] batman_adv: batadv0: Adding interface: batadv_slave_0
[  146.410272][ T6042] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  146.410293][ T6042] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  146.411722][ T6042] batman_adv: batadv0: Adding interface: batadv_slave_1
[  146.411735][ T6042] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  146.411752][ T6042] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  146.586663][ T6042] hsr_slave_0: entered promiscuous mode
[  146.587350][ T6042] hsr_slave_1: entered promiscuous mode
[  148.454178][ T6042] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  148.505451][ T6042] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  148.508763][ T6042] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  148.550948][ T6042] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  148.552950][ T6042] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  148.587390][ T6042] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  148.597623][ T6042] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  148.622645][ T6042] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  148.804654][ T6042] 8021q: adding VLAN 0 to HW filter on device bond0
[  148.836052][ T6042] 8021q: adding VLAN 0 to HW filter on device team0
[  148.854503][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[  148.855651][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[  148.914625][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[  148.914750][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[  149.525959][ T6042] 8021q: adding VLAN 0 to HW filter on device batadv0
[  149.632248][ T6042] veth0_vlan: entered promiscuous mode
[  149.658097][ T6042] veth1_vlan: entered promiscuous mode
[  149.724925][ T6042] veth0_macvtap: entered promiscuous mode
[  149.736443][ T6042] veth1_macvtap: entered promiscuous mode
[  149.773553][ T6042] batman_adv: batadv0: Interface activated: batadv_slave_0
[  149.796459][ T6042] batman_adv: batadv0: Interface activated: batadv_slave_1
[  149.821681][ T1028] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  149.823051][ T1028] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  149.823088][ T1028] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  149.823119][ T1028] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  150.764502][ T1028] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.505820][ T1028] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.808807][   T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  151.808825][   T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  152.064435][ T1028] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.142570][  T157] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  152.142589][  T157] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  152.480829][ T1028] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.388800][ T1028] bridge_slave_1: left allmulticast mode
[  153.388834][ T1028] bridge_slave_1: left promiscuous mode
[  153.389091][ T1028] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.480523][ T1028] bridge_slave_0: left allmulticast mode
[  153.480557][ T1028] bridge_slave_0: left promiscuous mode
[  153.480818][ T1028] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.250268][ T1028] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  154.309111][ T1028] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  154.350770][ T1028] bond0 (unregistering): Released all slaves
[  154.724869][ T1028] hsr_slave_0: left promiscuous mode
[  154.772131][ T1028] hsr_slave_1: left promiscuous mode
[  154.774740][ T1028] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  154.774765][ T1028] batman_adv: batadv0: Removing interface: batadv_slave_0
[  154.829199][ T1028] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  154.829224][ T1028] batman_adv: batadv0: Removing interface: batadv_slave_1
[  154.965250][ T1028] veth1_macvtap: left promiscuous mode
[  154.965354][ T1028] veth0_macvtap: left promiscuous mode
[  154.965596][ T1028] veth1_vlan: left promiscuous mode
[  154.965777][ T1028] veth0_vlan: left promiscuous mode
[  155.679031][ T1028] team0 (unregistering): Port device team_slave_1 removed
[  155.729301][ T1028] team0 (unregistering): Port device team_slave_0 removed
[  155.902447][ T5264] 8021q: adding VLAN 0 to HW filter on device eth1
[  156.632302][ T5264] 8021q: adding VLAN 0 to HW filter on device eth2
[  156.832613][ T4918] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  156.838249][ T4918] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  156.869601][ T4918] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  156.873429][ T4918] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  156.874146][ T4918] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  157.863147][ T5264] 8021q: adding VLAN 0 to HW filter on device eth3
[  158.714883][ T5264] 8021q: adding VLAN 0 to HW filter on device eth4
2026/05/10 06:18:30 executed programs: 0
[  161.314751][   T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  161.336542][   T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  161.337532][   T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  161.374069][   T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  161.374827][   T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  162.340526][ T6381] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.340735][ T6381] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.340918][ T6381] bridge_slave_0: entered allmulticast mode
[  162.345487][ T6381] bridge_slave_0: entered promiscuous mode
[  162.347994][ T6381] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.348200][ T6381] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.354453][ T6381] bridge_slave_1: entered allmulticast mode
[  162.356918][ T6381] bridge_slave_1: entered promiscuous mode
[  162.512302][ T6381] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  162.514774][ T6381] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  162.651782][ T6381] team0: Port device team_slave_0 added
[  162.653820][ T6381] team0: Port device team_slave_1 added
[  162.811086][ T6381] batman_adv: batadv0: Adding interface: batadv_slave_0
[  162.811101][ T6381] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  162.811123][ T6381] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  162.813830][ T6381] batman_adv: batadv0: Adding interface: batadv_slave_1
[  162.813844][ T6381] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  162.813946][ T6381] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  163.283537][ T6381] hsr_slave_0: entered promiscuous mode
[  163.284251][ T6381] hsr_slave_1: entered promiscuous mode
[  163.418668][   T59] Bluetooth: hci0: command tx timeout
[  165.277139][ T6381] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  165.302915][ T6381] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  165.304170][ T6381] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  165.342354][ T6381] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  165.358515][ T6381] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  165.433804][ T6381] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  165.435231][ T6381] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  165.466490][ T6381] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  165.499643][   T59] Bluetooth: hci0: command tx timeout
[  165.677807][ T6381] 8021q: adding VLAN 0 to HW filter on device bond0
[  165.708046][ T6381] 8021q: adding VLAN 0 to HW filter on device team0
[  165.730560][  T157] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.730757][  T157] bridge0: port 1(bridge_slave_0) entered forwarding state
[  165.746066][ T1028] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.746191][ T1028] bridge0: port 2(bridge_slave_1) entered forwarding state
[  166.439915][ T6381] 8021q: adding VLAN 0 to HW filter on device batadv0
[  166.529936][ T6381] veth0_vlan: entered promiscuous mode
[  166.547225][ T6381] veth1_vlan: entered promiscuous mode
[  166.606071][ T6381] veth0_macvtap: entered promiscuous mode
[  166.617072][ T6381] veth1_macvtap: entered promiscuous mode
[  166.652540][ T6381] batman_adv: batadv0: Interface activated: batadv_slave_0
[  166.664820][ T6381] batman_adv: batadv0: Interface activated: batadv_slave_1
[  166.682825][ T1467] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  166.687752][ T1467] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  166.687962][ T1467] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  166.687996][ T1467] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  167.221305][   T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  167.221325][   T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  167.307424][ T1467] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  167.307445][ T1467] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/05/10 06:18:37 executed programs: 2
[  167.578605][   T59] Bluetooth: hci0: command tx timeout
[  167.936627][ T6512] loop0: detected capacity change from 0 to 32768
[  168.226094][ T6512] Bad index:0 in slot in dtroot
[  168.226094][ T6512] 
[  168.226114][ T6512] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[  168.226114][ T6512] 
[  168.226404][ T6512] ERROR: (device loop0): remounting filesystem as read-only
[  168.854976][ T6536] loop0: detected capacity change from 0 to 32768
[  168.892454][ T6536] Bad index:0 in slot in dtroot
[  168.892454][ T6536] 
[  168.892477][ T6536] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[  168.892477][ T6536] 
[  168.893747][ T6536] ERROR: (device loop0): remounting filesystem as read-only
[  169.250942][ T6538] loop0: detected capacity change from 0 to 32768
[  169.287059][ T6538] Bad index:0 in slot in dtroot
[  169.287059][ T6538] 
[  169.287074][ T6538] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[  169.287074][ T6538] 
[  169.287475][ T6538] ERROR: (device loop0): remounting filesystem as read-only
[  169.658472][   T59] Bluetooth: hci0: command tx timeout
[  169.661184][ T6540] loop0: detected capacity change from 0 to 32768
[  169.692961][ T6540] Bad index:0 in slot in dtroot
[  169.692961][ T6540] 
[  169.692977][ T6540] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[  169.692977][ T6540] 
[  169.693234][ T6540] ERROR: (device loop0): remounting filesystem as read-only
[  170.027322][ T6542] loop0: detected capacity change from 0 to 32768
[  170.043697][ T6542] Bad index:0 in slot in dtroot
[  170.043697][ T6542] 
[  170.043712][ T6542] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[  170.043712][ T6542] 
[  170.044002][ T6542] ERROR: (device loop0): remounting filesystem as read-only
[  170.402526][ T6544] loop0: detected capacity change from 0 to 32768
[  170.416091][ T6544] Bad index:0 in slot in dtroot
[  170.416091][ T6544] 
[  170.416104][ T6544] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[  170.416104][ T6544] 
[  170.416437][ T6544] ERROR: (device loop0): remounting filesystem as read-only
[  170.769041][ T6546] loop0: detected capacity change from 0 to 32768
[  170.785709][ T6546] Bad index:0 in slot in dtroot
[  170.785709][ T6546] 
[  170.785726][ T6546] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[  170.785726][ T6546] 
[  170.785992][ T6546] ERROR: (device loop0): remounting filesystem as read-only
[  171.142595][ T6548] loop0: detected capacity change from 0 to 32768
[  171.165912][ T6548] Bad index:0 in slot in dtroot
[  171.165912][ T6548] 
[  171.165935][ T6548] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[  171.165935][ T6548] 
[  171.166417][ T6548] ERROR: (device loop0): remounting filesystem as read-only
[  171.533403][ T6550] loop0: detected capacity change from 0 to 32768
[  171.567930][ T6550] Bad index:0 in slot in dtroot
[  171.567930][ T6550] 
[  171.567947][ T6550] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[  171.567947][ T6550] 
[  171.568270][ T6550] ERROR: (device loop0): remounting filesystem as read-only
[  171.925538][ T6552] loop0: detected capacity change from 0 to 32768
[  171.946417][ T6552] Bad index:0 in slot in dtroot
[  171.946417][ T6552] 
[  171.946431][ T6552] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[  171.946431][ T6552] 
[  171.946706][ T6552] ERROR: (device loop0): remounting filesystem as read-only
[  172.338982][ T6554] Bad index:0 in slot in dtroot
[  172.338982][ T6554] 
[  172.338997][ T6554] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[  172.338997][ T6554] 
[  172.339303][ T6554] ERROR: (device loop0): remounting filesystem as read-only
[  172.376076][    C1] ==================================================================
[  172.376089][    C1] BUG: KASAN: slab-use-after-free in lbmIODone+0x1312/0x16c0
[  172.376113][    C1] Read of size 4 at addr ffff888036f07008 by task ktimers/1/29
[  172.376126][    C1] 
[  172.376147][    C1] CPU: 1 UID: 0 PID: 29 Comm: ktimers/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  172.376162][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  172.376176][    C1] Call Trace:
[  172.376185][    C1]  <TASK>
[  172.376190][    C1]  dump_stack_lvl+0xe8/0x150
[  172.376207][    C1]  print_address_description+0x55/0x1e0
[  172.376222][    C1]  ? lbmIODone+0x1312/0x16c0
[  172.376237][    C1]  print_report+0x58/0x70
[  172.376250][    C1]  kasan_report+0x117/0x150
[  172.376267][    C1]  ? lbmIODone+0x1312/0x16c0
[  172.376285][    C1]  lbmIODone+0x1312/0x16c0
[  172.376301][    C1]  ? blkg_put+0x22/0x240
[  172.376313][    C1]  ? blkg_put+0x22/0x240
[  172.376325][    C1]  ? blkg_put+0x18d/0x240
[  172.376337][    C1]  ? bio_endio+0x989/0x9d0
[  172.376351][    C1]  blk_update_request+0x57e/0xe60
[  172.376371][    C1]  blk_mq_end_request+0x3e/0x70
[  172.376385][    C1]  blk_done_softirq+0x10a/0x160
[  172.376399][    C1]  handle_softirqs+0x1de/0x6d0
[  172.376416][    C1]  ? smpboot_thread_fn+0x4d/0xa50
[  172.376431][    C1]  run_ktimerd+0x69/0x100
[  172.376446][    C1]  smpboot_thread_fn+0x541/0xa50
[  172.376461][    C1]  ? smpboot_thread_fn+0x4d/0xa50
[  172.376477][    C1]  kthread+0x388/0x470
[  172.376493][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  172.376508][    C1]  ? __pfx_kthread+0x10/0x10
[  172.376525][    C1]  ret_from_fork+0x514/0xb70
[  172.376541][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  172.376554][    C1]  ? __switch_to+0xc79/0x1410
[  172.376574][    C1]  ? __pfx_kthread+0x10/0x10
[  172.376590][    C1]  ret_from_fork_asm+0x1a/0x30
[  172.376610][    C1]  </TASK>
[  172.376616][    C1] 
[  172.376623][    C1] Allocated by task 6554:
[  172.376631][    C1]  kasan_save_track+0x3e/0x80
[  172.376644][    C1]  __kasan_kmalloc+0x93/0xb0
[  172.376656][    C1]  __kmalloc_cache_noprof+0x3a6/0x690
[  172.376670][    C1]  lmLogInit+0x3e5/0x1a00
[  172.376684][    C1]  lmLogOpen+0x4e1/0xfa0
[  172.376698][    C1]  jfs_mount_rw+0xee/0x670
[  172.376712][    C1]  jfs_fill_super+0x754/0xd80
[  172.376723][    C1]  get_tree_bdev_flags+0x431/0x4f0
[  172.376737][    C1]  vfs_get_tree+0x92/0x2a0
[  172.376749][    C1]  do_new_mount+0x341/0xd30
[  172.376767][    C1]  __se_sys_mount+0x31d/0x420
[  172.376788][    C1]  do_syscall_64+0x15f/0xf80
[  172.376803][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.376816][    C1] 
[  172.376819][    C1] Freed by task 6554:
[  172.376826][    C1]  kasan_save_track+0x3e/0x80
[  172.376837][    C1]  kasan_save_free_info+0x46/0x50
[  172.376853][    C1]  __kasan_slab_free+0x5c/0x80
[  172.376864][    C1]  kfree+0x1c5/0x6c0
[  172.376875][    C1]  lmLogShutdown+0x456/0x850
[  172.376892][    C1]  lmLogClose+0x28a/0x520
[  172.376907][    C1]  jfs_umount+0x2fb/0x3d0
[  172.376921][    C1]  jfs_fill_super+0x9c5/0xd80
[  172.376931][    C1]  get_tree_bdev_flags+0x431/0x4f0
[  172.376948][    C1]  vfs_get_tree+0x92/0x2a0
[  172.376963][    C1]  do_new_mount+0x341/0xd30
[  172.376978][    C1]  __se_sys_mount+0x31d/0x420
[  172.376993][    C1]  do_syscall_64+0x15f/0xf80
[  172.377006][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.377026][    C1] 
[  172.377029][    C1] The buggy address belongs to the object at ffff888036f07000
[  172.377029][    C1]  which belongs to the cache kmalloc-256 of size 256
[  172.377041][    C1] The buggy address is located 8 bytes inside of
[  172.377041][    C1]  freed 256-byte region [ffff888036f07000, ffff888036f07100)
[  172.377055][    C1] 
[  172.377059][    C1] The buggy address belongs to the physical page:
[  172.377075][    C1] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x36f06
[  172.377088][    C1] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  172.377100][    C1] flags: 0x80000000000040(head|node=0|zone=1)
[  172.377116][    C1] page_type: f5(slab)
[  172.377128][    C1] raw: 0080000000000040 ffff88801a010b40 dead000000000100 dead000000000122
[  172.377140][    C1] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  172.377152][    C1] head: 0080000000000040 ffff88801a010b40 dead000000000100 dead000000000122
[  172.377163][    C1] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  172.377175][    C1] head: 0080000000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[  172.377185][    C1] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000002
[  172.377191][    C1] page dumped because: kasan: bad access detected
[  172.377201][    C1] page_owner tracks the page as allocated
[  172.377206][    C1] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5267, tgid 5267 (dhcpcd-run-hook), ts 51650273804, free_ts 49728648990
[  172.377231][    C1]  post_alloc_hook+0x231/0x280
[  172.377245][    C1]  get_page_from_freelist+0x27c8/0x2840
[  172.377260][    C1]  __alloc_frozen_pages_noprof+0x18d/0x380
[  172.377277][    C1]  allocate_slab+0x77/0x660
[  172.377295][    C1]  refill_objects+0x33c/0x3d0
[  172.377312][    C1]  __pcs_replace_empty_main+0x373/0x720
[  172.377330][    C1]  __kmalloc_cache_noprof+0x44e/0x690
[  172.377344][    C1]  smk_fetch+0x95/0x140
[  172.377357][    C1]  smack_d_instantiate+0x757/0x990
[  172.377376][    C1]  security_d_instantiate+0x106/0x1d0
[  172.377390][    C1]  d_splice_alias_ops+0x71/0x3e0
[  172.377407][    C1]  ext4_lookup+0x302/0x710
[  172.377422][    C1]  __lookup_slow+0x2d2/0x440
[  172.377434][    C1]  lookup_slow+0x53/0x70
[  172.377446][    C1]  path_lookupat+0x3f5/0x8c0
[  172.377465][    C1]  filename_lookup+0x256/0x5d0
[  172.377483][    C1] page last free pid 20 tgid 20 stack trace:
[  172.377492][    C1]  __free_frozen_pages+0xfa6/0x10f0
[  172.377508][    C1]  rcu_cpu_kthread+0x99e/0x1470
[  172.377529][    C1]  smpboot_thread_fn+0x541/0xa50
[  172.377542][    C1]  kthread+0x388/0x470
[  172.377557][    C1]  ret_from_fork+0x514/0xb70
[  172.377570][    C1]  ret_from_fork_asm+0x1a/0x30
[  172.377584][    C1] 
[  172.377588][    C1] Memory state around the buggy address:
[  172.377595][    C1]  ffff888036f06f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  172.377604][    C1]  ffff888036f06f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  172.377612][    C1] >ffff888036f07000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  172.377619][    C1]                       ^
[  172.377626][    C1]  ffff888036f07080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  172.377635][    C1]  ffff888036f07100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  172.377642][    C1] ==================================================================
[  172.377672][    C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  172.377684][    C1] CPU: 1 UID: 0 PID: 29 Comm: ktimers/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  172.377699][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  172.377707][    C1] Call Trace:
[  172.377713][    C1]  <TASK>
[  172.377718][    C1]  vpanic+0x56c/0xa60
[  172.377737][    C1]  ? __pfx_vpanic+0x10/0x10
[  172.377755][    C1]  panic+0xc5/0xd0
[  172.377771][    C1]  ? __pfx_panic+0x10/0x10
[  172.377790][    C1]  ? lbmIODone+0x1312/0x16c0
[  172.377811][    C1]  ? lbmIODone+0x1312/0x16c0
[  172.377829][    C1]  check_panic_on_warn+0x89/0xb0
[  172.377850][    C1]  ? lbmIODone+0x1312/0x16c0
[  172.377868][    C1]  end_report+0x73/0x170
[  172.377885][    C1]  ? lbmIODone+0x1312/0x16c0
[  172.377904][    C1]  kasan_report+0x128/0x150
[  172.377921][    C1]  ? lbmIODone+0x1312/0x16c0
[  172.377944][    C1]  lbmIODone+0x1312/0x16c0
[  172.377964][    C1]  ? blkg_put+0x22/0x240
[  172.377977][    C1]  ? blkg_put+0x22/0x240
[  172.377991][    C1]  ? blkg_put+0x18d/0x240
[  172.378007][    C1]  ? bio_endio+0x989/0x9d0
[  172.378032][    C1]  blk_update_request+0x57e/0xe60
[  172.378051][    C1]  blk_mq_end_request+0x3e/0x70
[  172.378066][    C1]  blk_done_softirq+0x10a/0x160
[  172.378081][    C1]  handle_softirqs+0x1de/0x6d0
[  172.378098][    C1]  ? smpboot_thread_fn+0x4d/0xa50
[  172.378114][    C1]  run_ktimerd+0x69/0x100
[  172.378146][    C1]  smpboot_thread_fn+0x541/0xa50
[  172.378163][    C1]  ? smpboot_thread_fn+0x4d/0xa50
[  172.378188][    C1]  kthread+0x388/0x470
[  172.378204][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  172.378218][    C1]  ? __pfx_kthread+0x10/0x10
[  172.378235][    C1]  ret_from_fork+0x514/0xb70
[  172.378251][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  172.378266][    C1]  ? __switch_to+0xc79/0x1410
[  172.378300][    C1]  ? __pfx_kthread+0x10/0x10
[  172.378318][    C1]  ret_from_fork_asm+0x1a/0x30
[  172.378346][    C1]  </TASK>
[  172.379981][    C1] Kernel Offset: disabled